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(54) Crypt key system for broadcast programmes 

(57) The invention relates to a crypt key system 
applicable to a television system, a database system or 
an electronic commercial transaction system or the like. 
This system consists of a broadcasting station 1 1 . a 
datat>ase 12. a receiving apparatus 14. a data commu- 
nication apparatus 1 5 and a user terminal 1 8. As a crypt 
key system, a ' secret-key cryptosystem, a public-key 
cryptosystem. and a digital signature system are used. 
The keys used in the system are either encrypted or 
remain uncrypted to be sipplied by broadcasting. The 
present invention is effective in the prevention of an 
unjustified use of the datat^ase system, managing cop- 
yrights, and in a pay-per-view system and ayideo-on- 
demand system. Further, the present invention is effec- 
tive in realizing an electronic market which uses an elec- 
tronic data information system. * 
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Description 

Background of the Invention 

Field of the Invention s 

The present invention relates to a crypt key system 
that is used in a commercial trade or the like which uses 
a television system, a database system or an electrpnic 
data interchange. 10 

Prior Art 

In information oriented society of today, in addition 
to a normal terrestrial broadcasting, satellite broadcast- i5 
ing which is referred to as a broadcasting satellites (BS) 
and communication satellites (CS) or cable TV broad- 
casting which is referred to as CATV (cEdble television) 
using coaxial cables or optical cables is getting preva- 
lent. 20 

In a satellite broadcasting or CATV broadcasting, 
which distributes several tens of channels at the same 
time, scrambled channels of such as films, sport events, 
and music which cannot be viewed through a compre- 
hensive contracts are provided in addition to unscram- 25 
bled general channels. In order to view these channels, . 
it is necessary to subscribe to descramt)le the channels: . - 
however, normal subscription period is about one- month 
unit, andjt is impossible to view through temporary con- 
tracts., . 30, 

The inventor of the present inverition proposed inthe . ; 
Japanese Patent Application Laid-Open No. 6-46419 t - 
and the Japanese Patent Application Laid-Open N0.6- 
1 41 004 a system in which users obtain a viewing permit . ' 
key from a charging center via a communication line and ; 35 
charged, and descramt^les programs scrambled each by . 
respectively different scramble pattern, using the viewing 
permit key to view the programs; proposed in the Japa- > .. .. 
nese Patent Application Laid-Open No. 6-132916 an . ^ 
apparatus for the operation. ^^ 40 

In these system and apparatus, those who wish to 
use scrambled programs request for viewing to the 
charging center via a communication line by using a , - 
communication apparatus. The charging center trans- ^ ..^ 
mits the viewing permit key. tq the communication appa- 4S 
ratus corresponding to the request for viewing while . 
charging and collecting a tee. 

Users, on receiving the viewing permit keyvWith the 
communication apparatus, transmits; the yievving permit ; 
key via direct n^eans, cpnne(^ng the -comm^ so 
apparatus and the .receiving apparatus or via indirect;,:: 
means such as flexible disks or the like./.The rec^ving 
apparatus to which the yiewing^permit key^ is transmittejd :^ . . 
descrandbles the prograncis witii tiie viewing permit key 
and then. the users use the programs. - :PP 

Japanese Patent Application Laid-Open No. 6-\ 
13291 6 describes a'Sy^emai:Td^n apparatus for sell and 
remofatapeor adiskOT w^ichaplurai'^^ ^ ^ 

bled with a different scramt^le pattern. respec!Myely,ar^ 
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recorded to supply the viewing permit key witii IC cards 
or the like and use a specif ic data. 

. In addition, in tiiese days of information- oriented 
society, a database system has k>een propagated for 
mutually using data which are kept independently by 
each computer by constituting a computer communica- 
tion network by LAN (local area network). WAN (wide 
area network), and Inter-Net system mutually connecting 
these networks. 

in the meantime, a technology has been developed 
for reducing the information amount py compressing a 
television moving picture signal which could not be digi- 
tized because of a huge amount of information as a result 
of digitization, to enable practical digitalization. So far. 
H.261 standard for video conference, JPEG (joint photo- 
graphic image coding experts group) standard for static 
pictures. MPEG 1 (moving picture image coding experts 
group 1 ) standard for storing pictures and MPEG 2 cor- 
responding to the present telecast and the high- defini- 
tion telecast from the television broadcasting are 
prepared. 

The digitization technology using these picture com- 
pression technology is used for the television broadcast- 
ing or the video picture recording. In addition, even 
television moving picture data which could not be dealt 
witii before can be dealt writii now. Then, the "multimedia 
system" which deals with various data dealt with by the 
computer and the digitized televiaon moving picture data 
has been focused as a future technology. 

This multimedia system is also incorporated in tiie 
data communication and can be used as one data on the 
database. 

While the scope of usage of the database is 
expanded, the method for charging for the data usage 
on the database, and the methc^ for,deaiirig witii copy- 
right.prpblerns geiperated by copying.-transmitting other 
than direct usage of data, and also the secondary exploi- ; 
tation right problem generated as a refsutt of data edition 
have become importarrt problems. - 

. To safely deal with charging and.copyrights procesSj 
it is reqinred that.the data cannot be used by users other 
than authorized users, and data encryption is the best 
means for it. 

In addition, an electronic market system has k>een 
investigated; for converting information in various kinds 
of transaction which has been carried out by paper doc-; 
uments so far. into an electronic data to execute elec- 
tronic transaction by using , the^, ^electronic data 
interchange for transmitting and receiving data by the 
data.rarnmunicatipnjechnology. In addition,;an investi- 
gation is also made on the possibility of carrying out an 
electronical settiemerit on, the^^^eJectronic .cprnmerdal 
transaction system - , , . „ ^ . . : .w:...:^ \ : 

In tHe,cprTimerQ|al:trarisactipns. the reliability pnihe 
^ansaction details is required and. the security in the set- 
tiement is. required. Consfequentiy, in the electrpniccom- 
mercial transaction system and electronic settlement 
system.Jn - which, such', ratability and . secMrityr .are 
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demanded, it is required that the data is encrypted so 
that the data will not be falsified or used unjustrf iediy. 

In these television system, database system or elec- 
tronic commercial transaction system or the like, the data 
is encrypted and thus a crypt key is required for decrypt- s 
ing the encrypted data to us. And the crypt key must be 
given to data users; however, the processing is very trou- 
blesome because security and reliability are demanded. 

In the structure of the present invention, data ayp- 
tology acts an important part, in the beginning, a general 10 
explanation will be made on the data cryptology. 

In the data cryptology, the case in which the plaintext 
data M s encrypted by using a crypt key K to obtain a 
cryptogram data C is represented: 

15 

C=E(K. M). 

and the case in which the cryptogram data C is decrypted 
by using the crypt key K to obtain the plaintext data M is 
represented: ' 20 

M=D(K.C) 

As a typical method for ttie data cryptography tech- 
nology, there are a secret-key cr yptosystem and a put)lic- 2S 
key cryptosystem. The secret-key ayptosystem is a 
cryptosystem in which same seaet Key Ks is" commonly 
usedin encryption and decryption 

Cmks=E (Ks. M> : ' 30 

M=D (Ks, Cmks) 

The public- key cryptosystem is a cryptosystem irv - 
which a key for enayptioh'stfid a key ter 'dea are ■ as 
usedascrypt4^eys,*andtfiek^'for ericryfjlion IsTaid open 
but the key for d^ryption is not openf The key lor encryp- 
tion is referred to as a public-key Kb white the key for ' 
decryption Is relented to as a private-key K^. To use this 
cryptosystem.an information sender encrypts the plain- 
text data M by the pubic-key Kb of a receiver 

Cmkb=E (Kb. M). 

and the receiver receives the data and decrypts it t>y a - 4s 
private-key Kv to obtain the plaintext data M • - 

In this publicly cryptds^emV eryptanalysis is'v^ry dif- so 
fiCuH.^-' ^ ' * ' ' '■ ■ ' • * 

As an a|3plicatibn of the data cryptography technbl- * 
ogy. digital signature is performed as an electronic dafa-^'*^ 
autheriticatidn means to ensur&the reliability of therdata. 

The digital signattir'e is used a secret-key or a public-"' '^^55 
key. Generally, the public-key is used in the digits sign&- • 
ture.' -.^ ' ' - * •* * ■ ' ' 

In^the digital signature which is carried out by using - - 
the pubQc-key. the signer obtains a digital signature by 



encrypting a document m to which the document M Is 
compressed with hash algorithm, using the private-key 
Kv of the signer: 

Smkv=E (Kv, m) 

and transmits the original document hA or the com- 
pressed document m and the digital signature Smkv to 
the receiver. 

The receiver deaypts the digital signature Smkv by 
using the public-key Kb of the signer 

m=D(Kb. Smkv). 

When m'=m is established, it is recognized that the sig- 
nature is correct. 

As a method for providing these crypt keys to users, 
the inventor of the present invention proposed an inven- 
tion entitled "crypt key system" in the prior Japanese Pat- 
ent Application No. 6-70643. 

In the generally practiced crypt key system, the crypt 
key is provided only to users while the crypt key is pro- 
vided to persons other than the users in the crypt key 
system of this prior invention. ^ 

Fig. 1 shows the structure of the crypt key system^ 
proposed in the Japanese Patent Application No. 6^ • 
70643. - ^ - 

This system conrprises a broadcasting station 1 for ^ 
multiplex boadcasting such as BS.CS, ten^estrial broad- ' 
casting or FM or the like or data broadcasting, a data- 
base 2, a charging center 3, a receiving apparatus 4^ ' 
data Gommunicaition apparatus 5 and a User's terminal 

The broadcasting station 1 and the database 2. and^ ' 
the database 2-aixl the charging center 3 are connected^ 
to each other via a commuhication'line such as a dedi^-"^ 
cated lirie or the like or f l&cit)le 6\sc or the like. The data- 
base. 2 and the data communication apparatus 5 are 
connected by a communication line 7 such as a commu- 
nication line or CATV line. ■ ' 
The broadcasting station 1 and the receiving apparatus 
4 are connected with the broadcasting radio wave 6. The 
receiving apparatus 4 and the user terminal apparatus 
8, and the data communication apparatus 5 and the user 
terminal 8 are connected with a direct means such ias a 
connection cable or ari indirect-means such s^'a flexible 
disc. ■ ' • ' > • • ' * ' 5 ' " ■ ■ 

In Fig. 1 , what is shown with a solid linels a path of 
information Which is not'ericryptedi Whiat is shown with 
a broken line isi a path of cfaita which -is enci-ypted. 

4rh tfris system, the database 2 preTiminarily slippli es 
a perniifkey Kp (hereinafter referred to as% "pe^'^^'tkey") 
including 'the crypt key Kd which is different' froni one 
data tb'ahother to the'brdadcasting statiori-1 . The permit 
key Kp is explained'ih such a manhef that the permit tey 
Kp constitutes the crypt key^ bnPy^ for better under-' * 
standing. ' .io.r?>. :C.v :;.3!'^-' i :tv-js:-;i,. 

In some cases, the^crypt'ke/Kd as supplied without 
k>eing encFypted; and'Hii otheKcas^es? 6rier^ed by 
using the tommoh d-yjrt^je^ ? J li* * 
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CkdkO=E(Ka Kd), 

and is supplied as an encrypted crypt key CkdkO. 

In the case where the aypt key Kd Is encrypted and 
supplied, a common crypt key KO for decrypting the s 
encrypted crypt key CkdkO is supplied to users. This ^ 
common crypt key KO is supplied when users register 
with the database, or it is supplied to the users together 
with the encrypted data Cmkd when the encrypted data 
Cmkd is transmitted. 10 

(a) in the case where the crypt keyis not encrypted: 

In this crypt key system, the broadcasting station 1 
broadcasts the crypt key Kd supplied from the database is 
2, by using the radio wave 6. 

The receiving apparatus 4 supplies the received 
crypt key Kd to the user terminal 8 so that the user ter- 
minal 8 stores the received crypt key Kd in a recording 
medium such as a semiconductor memory, a flexible so 
disc, a hard disc or the like. 

The users who wish to use the data request for the 
use of the data M to the database 2 via the communica- 
tion line 7 by using the data communication apparatus 5: 

The database 2 which has received the request for 25 
use of the data M encrypts the data M by the crypt 
Kd which is a permit key Kp ^ ^ 

- Cmtel=E (Kd. M).. 

- • ■ ■ r . ^ . ... : 30 

and transmits the encrypted data Cmkd to the data com- * v 
munication apparatus 5 of users via the communication . 
line 7 and charges with the charging center 3. 

The data communication apparatus 5 supplies the ' 
received encrypted data Cmkd to the user terminal 8 35 
while' the user tertninal 8 decrypts the encrypted data 
Cmkd by the crypt key Kd which is stored in the recording ^ ^ 
medium ... 

M=D (Kd. Cmkd). - ''40 

(b) In the case where the crypt key is encrypted and the - 
common crypt key is preliminarily distrit}uted to users: 

In this crypt key system, when users register to use 45 
the database; the corhmoh crypt key' KO fs supplied to 
users with the recording medium such ds ROM or flexible - 
disc and the supplied common crypt key KO is 'stored in 
the user terminal 8. - ■ ^ * . • - - ; 

The database 2 encrypts the crypt key Kd by using so 
the common crypt k^'KO ' ' ' " ^ ' ' • » 

:cCkdkO=E{KO;Kd); ■ ^ 

and supplies encrypted crypt ?tey CkdkO to the broad- ^^-ss 
casting- station 1- =-^^"^ '^ ^ . ; :^ » % 

The broadcasting station 1 broadcasts the received 
.encrypted cp^ Key Ckdka supplied frdmdata^ ^ 
using the radio wave 6. 



The receiving apparatus 4 supplies the received 
encrypted crypt key CkdkO to the user terminal 8 which 
decrypts the encrypted crypt key CkdkO in the beginning 
by the preliminarily stored common crypt key KO 

Kd=D (KO. CkdkO). 

and stores the decrypted crypt key Kd in the recording 
medium such as a semiconductor mennory. a flexible disc 
or a hard disc. 

Users who wish to use the data requests for the use 
of the data M to the database 2 via the communication 
line 7 by using the data communication apparatus 5. 

The database 2 which receives the request for the 
data usage encrypts the data M which is demanded for 
usage encrypts data M by the crypt key Kd 

Cmkd^E (Kd, M). 

and transmits it to the data communication apparatus 5 
via the communication line 7 and chargess with the 
charging center 3. 

The data communication apparatus 5 supplies the 
received encrypted data Cmkd to the user terminal 8 
which decrypts the encrypted data Cmkd by the stored 
crypt key Kd 

. M=D(Kd. Cmkd). 

(c) In the case where the crypt key is encrypted and the 
common crypt key is distributed to the. user together with 
the encrypted data: . ' ■ ' 

\n this crypt key system, the database 2 encrypt the 
crypt key Kd by the common crypt key KO 

CldkO^E (KO. Kd) 

and supplies it to the broadcasting station 1 . 
' The broadcasting station 1 broadcasts the 
encrypted crypt key CkdkO which has been supplied 
from the database 2, by using the radio wave 6. 

The receiving apparatus 4 supplies the received 
encrypted crypt key CkdkO to the user terminal 8. The 
user terminal 8 stores the encrypted crypt key CkdkO in 
recording medium such as a semiconductor memory, a 
flexible disc, or a hard disc or the like. 

Users who wish to use the data request for the use 
of the data M to the database 2 via the communication 
•line 7 byfusing the data commurricatioh apparatus 5. 

The database 2 which receives the request tor the 
data usage encrypts the data M which is demanded for 
use by the crypt key Kd . . j C . 

Cmkd=E (l«. M). . 

and transmits it to the data communication apparatus 5 
via the communication line 7 together witii the common 
aypt key KO and charges with the charging center 3. 
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The data communication apparatus 5 supplies the 
received enaypted data Cmkd and the common crypt 
key KO to the user terminal 8. The user terminal 8 
decrypts the encrypted crypt key CkdkO which has been 
stored in the recording medium by the common crypt key 5 
KO 

Kd=D (KO. CkdkO), 

and decrypts the encrypted data Cmkd by the deaypted 10 
crypt key Kd 

M=D (Kd, Cmkd). 
Summary of the Invention is 

The present invention provides a concrete structure 
for applying the invention of the crypt key system 
described in the previous applications to the television 
system, the dateUDase system or the electronic commer- 20 
cial transaction system or the like. 

This system conrprises a broadcasting station, a 
database, a receiving apparatus, a data communication 
apparatus, and a user terminal. As the crypt key system, 
secret-key cryptosystem and the put>iic-key cryptosys- 25 
tem are used. In addition, the digital signature is used, 
and the crypt key is supplied through broadcasting with 
either encrypted or uncrypted. 

The present invention is effective in the prevention 
from unjustified use or the copyright management in the 30 
database system, a pay-per-view system, or a video-on- - 
demand system. Furthermore, the present invention is a 
useful means in the realization of an electronic market 
using the electronic data interchange system. ; . . 

l-: . T»".,rv'~ •*» • ;r . ' i." •* ■• ' 35 

Brief Description of the Drawings 

Fig. 1 is a structural view of a aypt key system 
according to the prior applications. 

,40 

Fig. 2 is a structural view of the crypt key system 
according toafirstemtxxlimentofthepresentlnven- . 
tion. 

Fig. 3 is a structural view of the crypt key system ,4^ 
according to a second embodiment of.the present . . 
invention. ■ r ^ r. .i^^-y- 

Fig. 4 is a structural view:of the. crypt key systenr - ^ 
according to third and- fourth- emt>odiments of. the so 
present invention. --z-^ ' ; . • r^ 'v ^ ' 

Figs. 5(a). 5(b) arxi 5(c) are structural views olfrfth . , m 
embodiment to which the present invention is 
applied. 55 

• ■ . ' I . ' \ *• c 
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Embodiments 

Embodiments of the present invention will be 
descrit)ed by using Figs. 2 through 4. 

[Emtxxjiment 1] 

A system shown in Fig. 2 is a crypt key system of 
the embodiment 1 in which the present Invention is 
applied to a datatjase system. This system comprises a- 
broadcasting station 1 1 which either a multiplex broad- 
casting by of BS, CS, a terrestrial wave television, or FM 
broadcasting or the like, or data broadcasting by a digital 
broadcasting, a database 12 in which various kinds of 
data including moving picture data is stored, a charging 
center 1 3, a receiving apparatus 1 4 for receiving the data 
broadcasting offered by the broadcasting station 11 . a 
d€rta communication apparatus 15 for communicating 
with the database 12 and the user terminal 18 for using 
the data. 

The database 12 and the broadcasting station 11, 
arxi the database 1 2 and the charging center 1 3 are con- 
nected with a direct means connecting with a communi- 
cation line such as a dedicated line or an indirect means 
such as a flexible disc or the like. The database 12 and 
the data communication apparatus; 5 are connected with 
a commurucation line 17 such as a communication line, 
or CATV line or tiie like. Then, tiie broadcasting station 

1 1 and the receiving apparatus 1 4 are connected with a 
radio wave 1 6 such as a terrestrial wave television broac!- 
casting, satellite televisiort broadcasting; -^CATV broads 
casting, FM broadcasting or asatellitetlata broadcasting: 
or the like. The receiving apparatus 1 4 and the user ter: 
minal 16, and tiie data comrnunication apparatus 1 5 ^ 
the user terminal 18 are connected with a direct means 
such as a connection cabie. or an indirect means such 
as a f lexible disc or the like. 

What is shown with a solid line in Rg. 2 is an 
uncrypted data path and what is shown with a broken 
line is an encrypted data path. . 

InckJentally. data exchange between the database 

12 and the broadcasting station 1 1 ,arKj the database 12 
and the charging center 13 are, in principle, carried out 
with a dedicated line or af lexitrfe disc. In addition, a public 
line, a broadcasting satellite, a communication satellite 
or a terrestrial wave broadcasting-can be used. In. such 
a case, the data is encrypted; . ' ■ - - 

In this system, the secret-key cryptpsyst^ and the 
public-key cryptosystem are used. : : . : t . 

.The .database J 2 prepares the pyblicrkey Kbd and 
the private-key Kvd to supply the public-key Kbd .to the 
broadcasting station 1 1 . The broadcasting station 1 1 
which receives the put>l|c-key Kbd broadcasts it by a tele- 
text multiplexing broadcasting using scanning lines dur- 
.ing the. retrace blankirig interval period of an arnalog 
television picture signal, the data broadcasting using a 
sub audio band:of'ftie analog teleyi§ip^ audio signal, FM 
multiplex data broadcasting jdigit^tciatarbro^d^ting. 
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Further, in this case, a digital signature of the data- 
base 1 1 can be done to the public-key Kbd. 

The data may be supplied without encrypting the 
menu in which the titles of data which can be used, the 
content introduction of the data, product catalogs, order s 
forms, blank checks, the copyright information for the 
convenience of the data usage. 

The receiving apparatus 14 which receives the 
transferred public-key Kbd sends the public-key Kbd to 
the user terminal 18. The user terminal 18 which io 
receives the transferred public-key Kbd stores the public 
key Kbd in the recording medium such as a semiconduc- 
tor memory, a f iexit)le disc, or a hard disc or the like. 

Users who select the data which they request for 
usage by means of menu or the introduction of contents is 
request for the use of data M to the database. 1 2 via a ' 
communication line 1 7 by the data communication appa- 
ratus 15.. 

At this time, the user encrypts the public-key Kbd of 
the database 12 by own secret-key Ksu which has 20 
received from the database 12 

Cksukbd=E (Kbd. Mksu) 

and transmits it to the database 12 25 

The datat>ase 1 2 decrypts the encrypted seaet-key 
CksulM of the user t>y the private-key Kvd . . 

Ksu«D (Kvd, Cksukbd) 

and enaypts tiie data M which is requested for use by 
the decrypted user secret-key Ksu 

CmkSU=E (Ksu. M).. . . : - 

and transmits it to the data communication apparatus 1 5 
of the user via the communication line 1 7. 

The user who receives the data Cmksu encrypted 
by own secret-key Ksu decrypts the encrypted data 
Cmksu with the user terminal 18 ..... • 3 • 

M=D (Ksu. Cmksu) 

to use it. 

This. system is. provided with charging center 13 
which is incorporated with the datatese 12. This charg- 
ing center 13;is used when thedata is provided with pay 
basis. In the case where the data is one which is provided 
with free such as shopping information. or, the likev-.this 
charging center ,13 is^ used; However, even the data 
provided with free such as shopping Information or-the: 
like, the charging center- is used in the case where 
charges are to be settled along virith orders, c v i « 

[Embodiment 2] : ^ . , -.-.y^. 

Fig. 3 shows .accrypt ; key system- according to 
embodiment 2 in which the present jnvention . is. applied 
V to a video on demand (VOD) system which broadcasts 



television programs corresponding to the requests from 
users. 

This system comprises a CATV station 21 , a charg- 
ing center 23. a receiving apparatus 24, a data commu- 
nication apparatus 25 and a user terminal 28. 

The charging center 23 is used when the television 
program is provided on pay basis but not used when the 
television program is provided without charges along 
with advertisement. 

in this system, the encrypted television broadcast 
programs and the crypt key are transmitted virtth the 
CATV line 27 which is a single path. 

The CATV station 21 and the charging center 23 are 
connected with a direct means for electrical connection 
with a communication line such as a dedicated line or 
the like, or an indirect means such as flexible disc or the 
like. The CATV station 21 and the receiving apparatus 
24, the CATV station 21 and the data communication 
apparatus 25 are connected with the CATV cable 27. The 
receiving apparatus 24 and the user terminal 28, the data 
communicaition apparatus 25 and the user terminal 28 
are connected with a direct means such as a connection 
cable or an indirect means such as a flexik>ledisc or the 
like. 

. Vy/hat is shown with a solid line in Fig. 3 is an 
uncrypted data path and what is shown with a broken 
line is an encrypted data path. 

Incidentally, the data exchange between the CATV 
station 21 and the charging center 23 is carried out 




30 through a dedicated line or a flexit>le disc in principle. 
Additionally, the data exchange is also carried out by 
means of the communication line or the broadcasting 
. . / satellite, the communication satellite and the terrestrial 
wave broadcasting: In this case, the data is encrypted. 
35 In this system; the CATV systemcis treated as one 
; kind of database. As a crypt key method; the secret-key 
ayptosystem and tiie put3lic^ key cryptosystehi are 
adopted. , / ' • 

Users who use this VOD system either registers their 
- 40 own public-key Kbu with the CATV station 21 in advance, 
or transmit the puk:)iic-key Kbu by using the communica- 
tion apparatus 25 at the time Mtien the request for usage. 

The CATV station 21 .encrypts the secret- key Ksb 
of the CATV station 2 1 by the transnrutted put)lic- key Kbu 
45 ofusers^^ ' ; : 

V r . Cksbkbu=E-(Kbu, Ksb) ^- ■ ^ - — 

and transmits it to the data communication apparatus 25 
so viathe CATV line 27 ; ■. ■ ■^ 
' I' > j :■: The television program M is ehCrypted by using 
the secret-rkey Ksb of the CATV station 21 - - ^ 

- ^^rv-;; r,. Cmksb=E(Ksb. M) . ^ 

55 i^ 

• i and is broadcast to the receiving appai'atus 24 via the 
: CArVline27c^ ^ ^: ^ ' 



6 



BNSDOCID: <EP ^0719045A2_L> 



11 



EP0 719 045A2 



12 



The user decrypts the received encrypted secret- 
Key Cksbkbu of the CATV station 
21 by the private-key Kvu of user 

Ksb=D (Kvu. Cksbkbu) 5 

and decrypts the encrypted television program Cmksb 
using the decrypted secret-key Ksb. of the deaypted 
CATV station 21 

10 

M^D (Ksb. Cmksb) 

for use. 

In addition, this crypt key system is applicable, if 
encryption is available, to the television broadcasting is 
other than CATV, audio broadcasting, or data broadcast- 
ing. As a method for transmitting the crypt key from the 
broadcasting station, the teletext multiplex broadcasting 
using the scanning lines during the retrace blanking 
inverval of an analog television ppicture signal, the data 20 
broadcasting using an sub audio band of the analog tel- 
evision audio signal, FM multiplex data broadcasting, or . 
digital data broadcasting can be also used. 

In addition, this crypt key system can be used when 
the crypt key is distributed in the data copyright manage- 2S 
ment system which isdesaibed in prior Japanese Patent 
Applications Nos. 6-64889. 6-237673, 6-264199. 6- 
264201 and 6-269959 proposed by the present inventor. 

This crypt key system can be also applied to a case ' 
where a recording medium such as a CD-ROM or the 30 
like in which a plurality of informations are encypted with . . 
a plurality of different patterns and are recorded, .which / 
is described in Japanese Laid-Open Patent Application : v 
No. 6-132916. proposed by the present inventor. . : : - . 

These inventions of .-previous i applications are 36 
explained hereinbelow.*'-; 

An:Outline of the data copyright management sys- 
tem described in Japanese Patent Application No. 6- ^ 
64889. is described as follows. 

To. control the copyright in the display (including the 40 
process to sound), storage, copy, edit and transfer of dig- 
ital data in the database system including a real time 
transmission of a digital picture, any one or a plurality 
among a program for managing the copyrights: a copy- ' 
right information and a copyright management message ; 45 
are transmitted, when needed, in addition to a permit key 
for allowing the use of encrypted;data con-esporKling to 
usage requests from users. 

The copyright management. message is displayed 
on a screen and advises or warns to the user in csise^the.- :so 
data is utilized other f\an the conditions of user's requ^ 
or the permission. T.the copyright management program -r-'^-^ 
watches and controls in order that the data is not utilized 
beyond the conditions of user's request or the permis- 
sion. 55 

The copyright rnanagem^it program, the coi:^right o- /: 
information and the copyright management message are^ -^x; 
supplied together with a permit key in some cases, or 
they are supplied together witii data in some other cases. 



Or, a part of them is supplied together with the permit 
key. and other part is supplied witii tiie data. 

F=br data, tiie permit key, the copyright management 
message, the copyright information and the copyright 
management program, there are the following three 
cases: a case where tiiese are transmitted with 
encrypted, and upon using, the encryption is decrypted, 
a case where they are transmitted with encrypted and 
remain in encrypted except being decrypted only when 
they are displayed, and a case where they are not 
encypted at all. 

An outline of the data copyrigtit management sys- 
tem described in Japanese Patent Application No. 6- 
237673 is described as follows. 

This database copyright manageriient system com- 
prises a datat>ase in which uncrypted data is stored, a 
data supply means of a broadcasting station such as sat- 
ellite broadcasting station for broadcasting the encrypted 
data from the database, or of a recording medium such 
as a CD-ROM where encrypted data from the database 
is recorded, .a communication network, a key control 
center for controliing a crypt key, and a copyright man- 
agement center for controlling copyrights of the data- 
base. Then, the database utilization program for using 
the database, the copyright management program: for 
controlling the copyrights, a first crypt key and a second 
crypt key are used. - 

A first user registers with the key control center in 
advance for using the database. At that time, the data- 
base use program is distritxjted. This database utiliza- 
tion program includes information on-the first user and^a 
program for generating a crypt key unique to the first user 
with a predetermined algorithm by using tiie information. 

The data is stored in the- datak>ase writholrt 
encrypted, and when it is distributed by broadcast,%r 
through recorded on a recording medium or a Gommuni- 
cation network, tine data is encrypted by the first crypt- 
key to an enaypted data. 

The encrypted data is stored in recording medium 
such as a semiconductor memory of the first user termi- • 
nal, a flextt)le disc or hard disc, when distributed via 
broadcasting or communication networK is stayed as is 
when recorded in a CD-ROM recording medium and dis- 
tributed, or is stored in the recording medium such as a 
semiconductor memory of the first user terminal, a flex- 
ible disc or a hard disc or thelike: ' - • - 

The first user who -uses the data directiy from the 
database requests a^ key for decrypting and Using the 
encrypted:data to the key control center:via the commu- 
nication^jietwork. Information conceming the first user is 
presented at this time. ^ *. :. ' ' - ' • v . . 

The key. control cerrter transfers the information on 
the first user to the copyright management- center wHilie 
the copyright management center uses information I 
concerning the first user to generate a crypt key peculiar 
to the first user by a predetermined algorithm, and the 
generated first usercrypt key is used*to encrypt the cop^^ 
yright management program.'^he-ijfsticrypt key and the 
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second crypt key to be transferred to the key control - 
center. 

The copyright management program encrypted by 
using the crypt key generated by using the information 
on the first user is peculiar to the first user. s 

The key control center which receives the encrypted 
copyright management program transmits to the first 
user terminal each of the encrypted copyright manage- 
ment program, the first crypt key and the second crypt 
key via the communication network. Then, the first user io 
stores the received encrypted copyright management 
program, the first crypt key and second crypt key in a 
recording medium such as a semiconductor memory, a 
flexit^e disc, or a hard disc. 

The first user generates the crypt key peculiar to the 75 
first user by using a database utilization program which 
is distributed in advance and using information on the 
first user with a predetermined algorithm. Then, the first 
user decrypts the encrypted copyright management pro- 
gram, the encrypted first and second crypt keys, and the - 20 
encrypted data is decrypted by the decrypted first crypt 
key. 

In the case of storing, copying and transferring the 
decrypted data, it is encrypted by the second crypt key 
decrypted with the decrypted copyright management 25 
program. Then, the encrypted data is stored in the 
recording medium such as the semiconductor memory 
of the first user terminal, the f lexit>le disc or the hard disc 
or the like. When the first user uses the stored encrypted 
data, it is decrypted by using the second crypt key. Then. 30 
this operation is repeated for primary sue of the. data. 

When the encrypted data is copied on the external 
memory medium or is transfen-ed to the second user ter- 
minal via the communication network, the first crypt key 
and the second crypt l^y are disued by the copyright 35 
management program. The first user then.cannot use 
the encrypted data. 

At this time, when the encrypted data is stored in the 
first user terminal, uncrypted information on the first user 
Is added to the encrypted data which is stored. 40 

In the case where the first user uses the encrypted 
data gain, the first user obtains the first crypt key and the 
second crypt key from the copyright management center 
With the regrant of the first crypt key and the second crypt • 
key, it is confirmed that the second user exists which has 45 
received the copy or the transfer of the encrypted data 
from the first user, and the fact of the second user is 
recorded on the copyright management center. 

The second user who has received the copied or > 
transferred encrypted data requests for the secondary so 
use of the encrypted data to the copyright managenient - J 
center. The second user is not required to register with 
the key. control center preliminary, unlike the first user. At 
the time of the request for data use. with the presentation ; 
of the information of the first user* from which the ss 
encrypted data has .been copied or transferred to the 
copyright -control cenleri :the request is accepted. If the ^ : 
first user, information .is not presented at tiiis. time;, the 
user is recognized to t>etl:iefirsixjsenand not the second' 



user who has received the copy or the transfer of the 
encrypted data from the first user. Thus, the request for 
the secondary use is not accepted. 

The copyright management center which acepts the 
request of the secondary use transmits the second crypt 
key for decrypting the encrypted data, the tiiird crypt key 
for reencrypting and redecrypting the deaypted data 
and the copyright management program for the afore- 
mentioned decryption, the reencryption and redecryp- 
tion, to tiie second user. 

The outiine of the copyright management system 
described in tiie Japanese Patent Application No. 6- 
2641 99 is described as follows. 

This copyright management system uses the first 
public-key prepared by the user, 
the first private-key corresporxjing to the first public-key, 
the second public-key, the second private-key con-e- 
sponding to the second public-key. and the first secret- 
key and the second secret-key prepared by the data- 
base. • ^ . 

The database side encrypts the data which is not 
encrypted by using the first secret-key, and encrypts the 
first secret-key by the first public-key, and the second 
secret-key by the second public-key. These encrypted 
data and tiie encrypted first secret-key and second 
secret-key are transmitted to users. 

The user decrypts the encrypted first secret-key by 
using the first private-key and decrypts the encrypted 
data by the decrypted first secret-key for use. Then, the 
user decrypts the encrypted second secret-key by the 
second private-key so that the decrypted secorvJ secret- 
key is used as a crypt key for data storage, copy and 
transfer after the decryption of the data. 

The putfine of thadata copyright -management sys- 
tem described in the Japanese Patent Application No. 6- 
264201 isdescnbed as follows, i - v v f ^ - ' ■ • 

In the case vvhere new data is prroduced by Siting 
a plurality of encrypted data which are obtained from tiie 
database and is encrypted to be supplied to others, tiie 
crypt key for a plurality of data which are originarmate- 
rials and edit program as editing process with a digital 
signature are used as a use permit key. 

When the user who has received the edited and 
encrypted data requests for use by presenting the digital 
signature to the copyright management center; the cop- 
yright management center recognizes the editor on the 
basis^ the digital signature. Only in the case where it is 
recognized that the editor is the authorized user of the 
edited data, the crypt key for use is provided to those 
wtio request for use. : ' 

The outiine of a method described in the Japanese 
Patent Application No. 6-269959 is explained as follows. 

A first user receives the encrypted data in whichthe 
original data is encrypted by ttie first crypt key from tiie 
database and decrypts tiie data at 1he time of usage. 
After that, tiie data is encrypted by a^ second crypt key 
generated with a predetermined atgorithm using one out 
of the first aypt key. the first Oder data* and the data 
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usage frequency or a combination thereof, and isstoiied. 
copied and transferred. 

When the second user requests the secondary use 
of the data, the data copyright management center gen- 
erates the second crypt key with a predetermined algo- 
rithm by using one out of the first crypt key of the original 
data, the first user data and the data use frequency or a 
combination thereof to be provided to the second user. 

The second user to whom the second crypt key is 
provided decrypts the encrypted original data by using 
the second crypt key for usage. 

[Embodiment 3] 

The system shown in Fig. 4 is a crypt key system of 
embodiment 3 where the present invention is applied to 
the database system or the VOD system. 

Like the crypt key system shown in Fig. 3 of embod- 
iment 2, In this crypt key system, the television broad- 
casting programs and the crypt key pass through a single 
path which is the CATV line; however, these may pass 
through different path, as a matter of couse. 

This system comprises a CATV station 31 for data 
broadcasting, a data managing center 33 such as data- 
base, a video system or the like, a receiving apparatus 
34. a data communication apparatus 35 and a user ter- . 
minal38. 

The data managing center 33 and the CATV station 
31 are connected with a direct means for connecting with 
a communication line such as a dedicated line or the like 
or with an indirect means such as flexible disc or the like.- 
The CATV station 31 and the receiving apparatus 34. : 
and the CATV station 31 and the data communication . 
apparatus 35 are connected with the .CATV line 37. Inci- 
dentally, instead olthe CATV.Iine 37^ a communication 
line which is an appropriate data broadcasting or avail- 
able for data communication can be used. The receiving 
apparatus 34 and the user terminal 3d. and .the data 
communication apparatus 35and the user terminal 
means are connected with a direct means such as a corv 
nection cable or with an indirect means such as a flexible 
disc. 

What is shown with a solid line is an uncrypted data 
path in Fig. 4 and what is shown with a.broken lihe.is an : 
encrypted data path. 

The data is exchanged between the.data managing 
center 33 and the CATV station 31 in principle witha ded- 
icated jine or a f l^ible disc. In addition, the data may be . 
also exchangedjmth a communication line, a broadca8t-\ 
ing satellite, a communication satellite and a ten-estrial : 
wave broadcasting.^ In such a case, the data is 
encrypted.^?.: • : « - : /• : - ^ ; 

This crypt k^ system adopts the secret-key crypto? 
system and a pUbficrkey :cryptosystem. • , * 

The data managing center 33 prepares and suppi tes2 ' 
to the CATV broadcasting station 31 the publio-key-Kkxl 
and the private-key Kvd common in all the datalo be^up- ; 
plied.aridfthe seicret^^eyKsdi which is different from one 7 
data to another. The CATV station 31 encrypts the 
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received secret-key Ksdi by using the public*key Kbd of 
the data managing center 33 

Cksdikbd=E (Kbd, Ksdi) 

and broadcasts it by multiplex teletext broadcasting 
using scanning lines during the retrace line blanking 
interval of the analog television picture signal, the data 
broadcasting using a sub audio band of the analog tele- 
vision audio signal. FM mutiplex broadcasting, or digital 
data broadcasting. * 

For convenience of the data usage, menu showing 
titles of available data and introduction of data outline can 
be also supplied without encrypted to promote the use. 

User who selected the desired data requests by the 
menu or the content irrtroduction requessts for using the 
data to the data managing center 33 via the CATV line 
37 by using the data communication line 35 through the 
CATV station 31 . At this time, the user transmits own pub- 
lic^key Kbu to the data managing center 33. 

The data managing center 33 which has received 
the request for use from the user enctyps the data M by 
the secret-key Ksdi 

- i . Cmksdi=E (Ksdi, M) 

arxJ transmits it to the user terminal 38. At that tlme^the 
private-key Kvd of the data managing center is encr^ted 
by the pubtic-key Kvu of the user who has requested the ^' 
use Ckvdkbu=E (Kbu. Kbd) ' - / 

to be transmitted to the user terminal '38: " ^ ' 
The user who receives the encrypted private^key 
Ckvdkbu of . tine data managing center decrypts^%e 
encrypted private^^key CkvdMxi by the user privat^key 
Kvu 



Kvd=D (Kvu. Ckvdkbu) ' 

and decrypts the encrypted seaet-key Cksdikbd by the 
decrypted privaterkey Kvd of the data managing center 

. Ksdi=D (Kvd, Cksdikbd). • 

decrypts the encrypted data Cmksdi by the decrypted 
secret-key Ksdi of the data managing center < 



MsD (Ksdi. Cmksdi)^ 



and use it:. 



[Embodiment'4] 



Since the system ^structure of embodiment 4* is the' 
same . as. embodiment 3 shown in Fig.t-4u explanation 
thereot will b& omitted; r '- ' • i':- * k ^. 

T tiiis system adopts the- secret-key cryptosystem 
and the public-key rccyptosystenrrasi^he^crypt key sys- 
ternsimilar4y .taemt>odimerit:.lr1 erntxxhment.3;:the-pri- ' 
vate^key.Kvd-cf tiie-data-managing centec--^ encrypted ■ 
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by the puWic-key Kbu of users who request for use while 
in embodiment 4. the private-key Kvd of the data man- 
aging center is distributed in advance by using the IC 
card or the like and stored in the user terminal In embod- 
iment 3 data M is distributed corresponding to the 5 
request for data usage, while in errdx>diment 4 the data 
M is broadcast by means of the CATV line or the satellite 
broadcasting in^espectrve of the request for data usage. 

When the user subscribes a comprehensive con- 
tract for using the database v^h the data managing 10 
center, the private-key Kvd of the data managing center 
which is commonly used with all data to be supplied is 
previously distributed to users by a recording medium 
such as an IC card or the like or a CATV line 37, and 
stored in the semiconductor memory of the user terminal is 
38. the hard disc or a flexible disc . 

The data managing center 33 prepares a seaet-key 
Ksdi different for each supplying data and a public-key 
Kbd. and supplies them to the CATV station 31. The 
CATV station 31 which receives the secret-key Ksdi so- 
encrypts the secret-key Ksdi fc>y the put}lic-key kbd 

Cksdikbd=E (Kbd, ksdi) 

and broadcasts.it by means of teletext multiplex broad* 25 
casting using scanning lines during the retrace blanking 
interval of the analog television picture signal, data 
broadcasting using the sub audio band of the analog tel- 
evision audio signal. FM multiplex data broadcasting or 
digital data broadcasting. 30 

At this time, for the'conveinience of the data usage. - 
menu showing the titles of data which can be used, or a 
content introduction for explaining the data outline for < ' 
promoting the data usage can be also supplied without 
encrypted. 35 

The CATV station 31 encrypts the data Mby the 
secret-key Ksdi 

Cmksdi=E (Ksdi. M) ^ ^ 

and broadcasts it via the CATV line in^espective of the 
request for use. 

The -user incorporates desired data' out of the data 
which is broadcast via the CATV fine on the basis of the ^ 
menu or the content introduction into the user terrronal '45 
by using a receiving apjDaratus 341 - ' » 

The user decrypts the- encrypted secret-key ' 
Cksdikbd by the private-key Kvd'df the data managing - 
centerwhich is stored in the setrrricorKluctor 'memory in - 
the user terminal 38;a hard disc or a f lexftrie disc ' ^ ^^' sd 

Ksdi = D (Kvd. Ck^ikbcO 

and decrypfe'the^ encrypted data' Gmksdi by the- 
decrypted secret-key Ksdi "' . / .^ c . -gj 

M«D (Ksdi. Ksdikbd) 

for use. 
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Other modifications of the embodimerlts for distrib- 
uting the crypt key will be explained. 

[Embodiment 5] 

in aforementioned embodiments, the public-key Kbd 
of the data managing center is broadcasit from the broad- 
casting station instead of the communication line. Thus, 
it is impossible to confirm whether the public-key Kbd is 
justified or not. 

In such a case, the private-^key Kvd of the data man- 
aging center is used for digital signature to the public-key 
Mxl of the data managing center. 

Skbdkvd=E (Kvd. Kbd) 

to be broadcast together with the public-key Kbd of the 
data managing center. 

The user recognizes the digital signature Skbdkvd 
by the received public-key Kbd of the data managing' 
center 

Kbd=D (Kbd, Skbdkvd) 
and when it is justified, use the pubiic-key. 
[Embodiment 6] " 

In' embodiment 5, in the case where the data man- 
aging center adopts the membership system for prelim- 
inarily registering the use of the database, the public-key 
Kbui of users who are members is also preliminarily reg- 
istered with the data managing center. 

The data'Thariagihg center encrypts the public-key 
Kbd of the data managing center -by the put>lic-kiey Kbui' 
of eachuseir ■ ■ * ' "\ ' 'i-*"'. v;. 

: Ckbdkbui=E (Kbui. Kbd): - 

Digital signature is made to the the put>ltc-key Kbd of the 
data managing earner by using the private-key Kvd of the 
data managing center 

: Skbdkvd=E (Kvd, Kbd): 

Then; the encrypted puk>lic-key Ckbdkbui different from 
one user'tb another and the digital signature Sktxlkvd 
are sent to the broadcasting station to broadcast the 
received encrypted public-key Ckbdkbui and the digital 
signature Skbdkvd. 

At this time, the uncrypted user identification infor- 
mation of each user is broadcasit by addir^g to the 
encryplied public-key Gkbdkliui if nec^^ ' 

Uthe iier who has received the brdadcast encrypted 
'public-key Ckbdkbui arid the digital sigriature SWxlks?d 
decrypts the encrypted public-key Ckbdkb of the data 
managing center by the puBlic-key Kvui - 

i ' • "Kbd=D (Kvui; CWxIkbui) - ^ 
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and stores the decrypted public-key Kbd of thedata rran- 
aging center in the user terminal. 

The user recognizes the digital signature Skbdkvd 
by the received public-key Kbd of the data nnanaging 
center s 

Kbd=D (Kbd, Skbdkvd). 

and if it is justified, uses the stored public-key Kbd of the 
data managing center. io 

In this manner, a crypt key different from one user 
to another can be distributed. 



the user secret-key Ksu by the public-key Kbs of the shop 
43 

. t . ■ 

Cksukbs=E (Kbs, Ksu) 

and enters Mu items such as the order content, the pay- 
ment amount and a credit card number with encrypted 
by the secret-key Ksu of user 42 on the basis of informa- 
tion such as advertisement, catalog, products descripr 
tion and charges/prices list 

CmuksusE (Ksu. Mu), 



[Embodiment 7] when needed, compresses Mu into a compressed doc- 

75 ument mu and. sign by digital signature by the private- 
Users present their own public-key Kbu to the data. key Kvu of the user 42 
managing center at each time of access or request to the • 

data managing center. Smukvu=E (Kvu. mu). 

The data managing center which receives the 

request from the user encrypts the requested data M by so arid transmits it to shop 43 attached with the public-key 

the pubiic-key Kbu of the user Kbu of the user 42 via the network 47. 

The shop 43 which has received the order decrypts 

Cmktxi=E (Kbu. M) the encrypted secret-key Cksukbs of the user 42 by the 

private-key Kvs of the shop 43 
and sends it to the broadcasting station. The broadcast- ^5 ■ ; . 

ing station broadcasts the received encrypted data Ksu<=D (Kvs. Cksukbs), 

Cmkbu. 

The users who receives the broadcast encrypted and decrypts the encrypted order document Cmuksuiby 

data Cmkbu decrypts by the private-key Kvu of the user the decrypted secret-key Ksu. of the user 42 ^ 

. ..... ... . .. . ; . .30 

M=D (Kvu, Cmkbu), . .. - Mu=D,(Ksu. Cmuksu),.- ; 

and use it. • , . ^ Then, order acceptance is executed. 

Figs. 5(a) through 5(c) show,the modified esanples When the digital signature Smukvu is recognized^y 

which use the crypt key systeipx)/ ttie. present invention. _ 3S the public-key Kbu which the user 42 attached ^ 

Each esample shown the structure in the figure is 
applied the crypt key system, in electronic market trans- mu=D (Kbu, Smukvu). 

action using the electronic data interchange system, to 

the crecDt settlement in retail shops shown in Fig. 5 (a); a receipt is sent to the usert42 via the network 47. 
the settlement by means of an electronic check shown 40 .In this system, it is possible to prevent the unjustified 

in Fig. 5 (b);and the whole saleconducted by makers and - . use of the credit number because the credit card number 

the like shown in Fig. 5 (c). .... > entered in the order form is sent with encrypted. 

In these systems, a digital signature is used in addi- Further, the following process enables reliable traps- 

tion to the secret^key cryptosystem. These systems action: 

comprise a user 42. and a retail shop 43. a financial 45 The shop 43 compresses the digital, data. Msl pf the 
organization 44:Or a sholesaler 45 such as a maker the . • - order form format, the credit card format. ^Jvertisement, 
like which is a World VVide Web (WWW) server on the y r catalog, a preview, prqducts„ description,, and content 
internet, • * • '-^ introductionof the database, and ..menu/charge sched- 

- ^ - A ..)•. ule/i^riceHst irtaa op.mpressecldocumerrt^.m^ 

[Embodbiient 8] - c v. - ; so ital signature by the pnyate-tey Kvs of -thfts^^ . - 

In the credit settlernent in the shop, shown in Fig. ,5 SmslkvspE (Kvs,. msl), 

(a), the shop 43 k^^padcastsa data Ms such as order form ,3 

format, credij card .format, advertisements, .catalogs. and broadcasts it-attaching the, public-key Kbs of the 
preview, products description, arid corrt.ert introduction 5^ shop 43 so that users recognizes-tfte digital signature 
of a database, and menu, charge schedule and pricq list. . . Smslkvs by using the public-key kbs of the shop 43 
via the satellite 41 and a CATV line.. ^ . : . , : / - - ^ i '-a n • ■ V 

User 42 who receives the data Ms such as order ms'=D (Kbs, Smskvs). 

form format and a pid3lic-teyJC>s, of ,tliej^ 43 encrypts 
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[Errtbodiment 9] 

In the settlement by means of electronic checks 
shown in Fig. 5 (b), the bank as financial organization 44 
broadcasts the blank check format Mf which is digital s 
data attached with the publlic-key Kbf of the bank 44 via 
the satellite 41 or the CATV line. 

The user 42 who receives the blank check format Mf 
encrypts the secret-key Ksu of the user 42 by the bank 
public-key Kb . . io 

Cksukbf=E (Kbf, Ksu). . 

enters Mu items concerning a payee and the payment 
amount with encrypted by the secret-key Ksu of the user is 
42 

CmksusE (Ksu. Mu). 

when needed, compresses Mu to the compressed doc- 20 
ument mu. and sign by digital signature by using the pri- - 
vate-key Kvu of the user 42 

Smukvu=E (Kvu, mu) 

...25 

and transmits them attaching the public-key Kbu of the / 
user 42 and the encrypted secret-key Cksukbf of the user 
42 which is encrypted, by the the public-key Kbf of the 
bank 44 to the bank 44 via the network 47. 

The bank 44 which receives the described check 30 
uses the bank private-key Kvfjo decrypt the encrypted 
secret-key Cksukbf of the user 42 

Ksu=D (Kvf. Cksukbf). : 

. ■ ... ■ . • v - 35 

decrypts the encrypted data Cmuksu of the payee and . o 
the payment amoount by the decrypted user secret-key 
Ksu 

Mu=D (Ksu. Cmuksu) ..40 

and recognizes the described content, and the currency 
exchange process is executed. 

Furthermore, the bank recognizes the user 42 by . 
Smuksu with the digital signature using the public-key. 4S 
Kbu added by the user 42 

mu'=D (Kbu. Smuksu) 

encrypts the conf irrnation document M82 by. the public- so 
key Kbu added by the user 42 j - .'r . . . . » 

Cms2kbu=E (Kbu. Ms2) 

and serid it k>ack to the user 42 via a network 47. ss 

The user who. receives the. encrypted confirmation : r.' 
document Cms2kbu .-frorn. the bank 44 / decrypts: the . / 
encrypted confirmation document Cms2Wxj by. the pri-r 
vate-key Kvu of the user 42 



Ms2=D (Kvu. Cms2kbu) 

and confirms the content. 

According to the system, since the patty to which the 
payment is made and the payment amount are 
encrypted and described in the check, it is possik^le to 
prevent the unjustified use of the content described in 
the check. 

In addition, the blank check format Mf which is digital 
data is xmpressed into a compressed document mf and 
signed by digital signature by using the private-key Kvf 
of the bank 44 

Smfkvff=E (Kvf. mQ 

to be broadcast attaching the public-key Kbf of the bank 
44. The user recognizes the digital signature Smskvs by 
the pubiic-key Kbs of the bank 44 

mf=D (Kbf. Smfkvf). 

The confirmation document Ms is further compressed 
into a compressed document ms with digital signature 
by using the public-key Kbu added by the user 

Smskbu=E (Kbu. ms) 

Thus, the bank can recognize the user who has entered 
on the check. 

[Embodiment 10] - . 

At the sholesaler 45 of a maker or the like shown in 
Fig. 5 (C), the wholesaler'45 forms a proforma invoice 
format Mwl into a compressed data mwt and sign by dig- 
ital signature by using the private-key Kvwrof the whole^ 
saler45:; - • : r. 

SmwIkvwsE (Kvw, mwl) 

and broadcasts it attaching the public-key Kbw of the 
wholesaler 45 via the satellite 41 or CATV line. 

The user 42 Which is a shop receives the broadcast 
proforma invoice format Mwt and the public-key Kbw of 
the wholesaler 45, and encrypts the proforma invoice 
request Mu by the pubiic-key Kbw of the wholiBsaler 45 

s- J.: Cmukbw=E (Kbw, Mu) ' 

'and transmits it to the wholesaler 45 via the network 47. 

At this time; the proforma invoice request Mu is com- 
pressed to compressed data mu*wheh needed, arid 
signed b/the digital signature by using the^private^y^ 
Kvu of the user 42 - - rt::.:, • r : 

■zl , V 5^ , v (:•■':: . n ::' 

Smkvu=E (Kvu. mu)^*' " 

to be transmitted together with the public-key Kbu of the 
user 42 to the wholesaler 45. 
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The wholesaler 45 which receves the encrypted 
proforma invoice request CmuKbw decrypts the 
encrypted profbmna invoice request Cmukbwby the pri- 
vate-Key Kvw of the.wholesaler 45 

s 

Mui=D (Kvu. CmuKbw) 

and recognizes the described prolbmria invoice request 
Mu. 

Further, the whole saler 45 recognizes the digital to 
signature SmKvu by the public-Key Kbu of the user 42 

mu=D (Kbu, SmKvu) 

and estimates to the proforma invoice and encrypts the 75 
proforma invoice Mw2 t)y the public-Key Kbu of the user 
42 - 

Cmw2Kbu»D (Kbu. Mw2) 

20 

and then, transmit it to the user 42 via the nelworK 47. 

The user 42 who receives the encrypted proforma 
invoice Cmw2kbu from the wholesaler 45 deaypts it by 
the private-Key Kvu of the user 42 

25 

Mw2»D (Kvu, Cmw2Kbu). 

According to this system, since the public-key and 
the private-key are used, there is no fear that the content 
of the proforma invoice is stolen to be used and also dif- 30 
ferent proforma invoice can be made for each user. j . ' 

In the systems shown in Rgs. 5 (a) through 5 (c), 
since each format and advertisement with no need of 
secrecy are broadcast via satellite -or CATV, broadcast^ 
ing. the.data can be effectively^transrnitted. .> 35 

As explained. above, : a multimedia system-can be - 
realized which combines general information media 
such as television broadcasting and audio broadcasting 
with data communication media. using computers by 
using the crypt Key system of the present invention, 40 
whhile the general information media and the data com- 
munication media has been existing so far as an inde- 
pendent system each. 

A concrete structure for realizing the multimedia sys* . 
tern wiil.t>e explained as follows. ; ^ . ^ . 4s 

The current television broadcasting is provided by ' ^ 
means of an analog system through terrestrial wave 
broadcasting, satellite broadcasting or CATV broadcast- 
ing. In the meantime, most general data communication 
line is a public telephone line. ^ '^-^ a -^^sd 

In such a system structure, the crypt Key syst€Rri 
acccffding to^ernbodiment 1 shown in Fig. 2 can t>e used 
as a basic structure of a syst€mf).for realizing a videoon- v 
demand. The broadcasting station broadcasts the pub-'^'^ 
lie-key Kbb in multiplexing with the sub audio band of an ss 
audio zone in the scanning line .of the vertical retrace 
interval of an analog television broadcasting program. 



Users who wish to use the television program 
encrypt their own secret-Key Ksu by the put)lic-key Kbb 
broadcast from the broadcasting station 

CKsukbb=E (Kbb. Ksu) 

and request for tiie usage by transmitting the the 
encrypted secret-Key CKsuKbb to the broadcasting sta- 
tion via a communication line. 

The broadcasting station decrypts the encrypted 
secret-Key CKsuKbb of the users by the private-Key Kvb 
of the broadcasting station 

Ksu==D (Kvb. CKsuKbb) 

scrambles the broadcasting program by the decrypted 
secret-Key Ksu and broadcasting it. 

The users descrambles the scramkDied program for 
use by their own secret-key Ksu. 

. By adopting such a structure, persons other than 
users those who request to use the program cannot use 
the program. 

As a basic structure of a system for realizing the 
video on demand arKi pay-perView in such a system 
structure, the crypt key system shown in emtx)diment 4 
or embodiment 5 in Fig. 4 can be used. 



The broadcasting station 31 encrypts by the secret- ^ ' " 

key Ksb of the broadcasting station 31 tiie public-key Kbb - ^ 
of the broadcasting station 31 * . - . v . 

0 V Cksbkbb=E (Kbb; Ksb)^^-^. '. ; t . „ 

and broadcasts it via the communication line^37 in mul- SiJ - r 

tiptexing with the scanning line or a sub audio^band of ^ 
the retrace interval of the analog television broadcasting 
program. ■ ' - - ^ - 



User 38 who wishes to use the television program 
38 requests for the usage by transmitting own public-Key 
Kbu to tiie broadcasting station 31 via the communica- 
tion line 37. 

The broadcasting station 31 scrambles the broad- 
casting program by the secret-Key Ksb of the broadcast- ' 
ing station and broadcasts it via the communication line 
37. At this time, the private-Key Kvb of the broadcasting' 
station 31 is encrypted by the puk)lic-Key Kbu of user 38 - 

CKvbKbu^E (Kbu. Kvb) 

and is broadcast via the communication line 37. 

The: user? 38 dedrypts the ^encrypted private key ^ 
CKvbKbu of the broadcasting station^ * v " , : 
31 ty own private-Key Kvu 

Kvb^rD (Kvu, CKvbKbu). 

decrypts the encryprted secret-Key CKsbKt^b of the broad- 
casting station 3 1 by the private-Key Kvbof thetiecrypted 
broadcasting station 31^ . .- j. :-*^!: c?' j /: - " :: 
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Ksb=D (Kvb, Cksbkbb) ^ 

and descrambles the scrambled broadcasting pro- 
gramby the decrypted secret-key Ksb of the broadcast- 
ing station 31 . 5 

By adopting such a structure, persons other than 
users who request to use the program cannot use them. 

Further, the aypt key system can be applied to tel- 
evision shopping which is frequently conducted currently 
by combining the television broadcasting and the tele- 
phone. 

In the currently conducted television shopping which 
uses the analog television broadcasting, product intro- 
duction and sales method are preserrted on the televi- 
sion screen so that users record Information on the sales 
method manually and request for the purchase thereof 
by a telephone on the basis of the recorded information. 

On the contrary, the crypt key system according to 
the present invention proposes a transmission of data of 
the order format and the check format in multiplexing with 
the scanning line of the vertical retrace interval or the 
sub audio band of the audio zone. 

In the meantime, an apparatus called personal corn- 
puter television set which integrates the personal com- 
puter and the television set or an apparatus which 
comt>ines a video capture device v/hich is realized as an 
IC card, a PC card or an insertion board and a personal 
computer allows incorporation of the television picture. 

With the combination of the multiplex data such as 
an order format and a check format with a video capture 
device, an electronic television- shopping can be con- 
ducted. 

In such a television shopping, when the teievisioh 
shopping product introduction display is broadcast, the 
order format and the checkformat are broadcast in data 
multiplex with the scanning line of the vertical retrace lin- 
terval or the sub audio t^nd of the audio zone. 

If the users operate the apparatus when the product 
introduction display of the desired product to purchase 
is broadcast, the order format and the check fbrnriat data 
are incorporated with the static display picture. - 

Users who wish to use the television shopping 
enters necessary items on the order format or checkfor- 
mat to request for the purchase: To secure the safety of 
the transaction at this time, encryption by the public-key 
cryptsosystemor the secret-key cryptosystem and dig- 
ital siignature are usedWith the^ 'system according to 
embodiments 1 to=5/ ' ■ - ' ■' 

At this time, the content of transaction can be Coh^ 
firmed v^en the purchase order is requested -by adding 
the static display picture- of the product introduction 
together with the order and the check. - 

As a sinple method, the order form format and the 
checkformat may be also transmitted as a television pic- 
ture so that necessary items are entered oh the order ss 
format and the-check format which are incorporated as 
a static display pictiire. ^ - .^ r 



In addition, the order form format and the check for- 
mat can be transmitted via facsimile broadcasting which 
is multiplexed with the sub audio band of the audio zone. 

By adopting such a method, an electronic market 
using electronic data intercahnge (EDQ by means of a 
current analog television method can be realized with the 
television shopping. 

These vkieo-on-demand system and the pay-per- 
view system can be applied to the digital television 
broadcasting other than the analog television broadcast- 
ing. 

In the case where a CATV line is used as a commu- 
nication line, both the broadcasting and data communi- 
cation can be carried out with the CATV line only. 

Further, these video-on^Jemand system and pay- 
per-view system can be also applicable to transmission 
of high-quality audio data and moving picture data per- 
formed in computer communication network system 
using low-speed public telephone line or high-speed 
integrated services digital network (ISDN) or in internet 
system connecting a plurality of computer communica- 
tion network. 

As an apparatus to be used, the receiving apparatus 
and the communication apparatus can be incorporated 
in the television set. Apparatuses can be also constituted 
as a separate apparatus by using a set top box or ttie like. 

in addition, a constitution an apparatus referred to 
as a personal computer television set which is gradually 
prevalent or by combining a video capture device which 
is realized as an iC card a PC card or an insertion board 
for transmitting a television signal to tiie personal com- 
puter can be used. 



Claims 




1 . Crypt key system comprising ai:>hoadcasting station 
(1 ), a datat^ase (2), a receiving apparatus (4), a data 
communication apparatuses) and a user terminal 
(8), wherein 

said database (2) and said broadcasting station (1) 
are connected with an online communication means 
such as a dedicated line; or the like or a off-line 
means such as a f lexibje disc or the like; - 
said datat>ase (2) and said data communication 
apparatus (5) are connected witii a communication 
fine(7) ; : . ^ • ^ ' > : . . 

said broadcasting station (1) and said receiving 
' apparatus (4)' are connected -with a radio wave (6); 
whereas between said receiving apparatus (4) and 

- - said user terminal (8) and between said data com- 
munication apparatus (5) and'said user terminal (8) 
said are connected with direct online means orwith 
off-line means such as a flexible disc; "♦ -v ^ 
said database (2) prepares a public-key and a pri- 

V- vate^key and suppliessaid public-key to saidibroad- 
casting station (1); : : r ^ . , 

said broadcasting station (1 ) broadcasts said 
received public-key; • ^ " - 

said receiving apparatus (4) tianismite^said received 
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public-key to said user terminal (8) ; 
said user terminal (8) stores said transmitted public- 
Key; 

a user encrypts a secret-key of the user by said 
received put3lic-key and transmits sakJ secret-key at 5 . 
the time of request for the use of data which he 
desires, to said database (2); 
said database (2) which has received the request for 
data use decrypts said secret-key of said user by 
said private-key and encrypts the data by said 10 
decrypted secret-key of said user to transmit the 
data to said data communication apparatus (5) via 
said communication line (7); and 
said user transmits the received data to said user 
terminal (8) to decrypt said data by said secret-key. is 

2. Crypt key system according to claim 1 wherein a dig- 
ital signature of said database (2) is provided on said 
public-key. 

. • ■ ■ < • 20' 

3. Crypt key system comprising a CATV station (31) . 
a charging center^ a receiving apparatus (34). a data 
communication apparatus (35). and a user terminal 
(38), wherein 

between said CATV station (31) and satd receiving 25 
apparatus (34) and between said CATV statori (31) 
and said data communication apparatus (35) are 
connected with a CATV line (37) . 
between said receiving apparatus (34) and said user, 
terminal (38) and between said data communication 30 
apparatus (35) and said user terminal (38) are con-- 
nected with direct online n>eans or with . off-line ^ 
means such as a flexible disc or the like; 
a user preliminarily registers a put)lic-key of said . 
user with said CATV station (31 ) or presents said 3S 
public-key of said* user at the time of request for 
usage;;* . 

said CATV' station (3 1 ) encrypts a seaet-key which 
is a use permit key of said CAT\/ (31 ) station by using 
said public-key of said user who has requested the 40 
usage and also encrypts a television program by 
said secret-key. to broadcast both via said CATV line 
(37); and 

said user receives said encrypted television pro- 
gram and said secret-key with said receivirng appa- 4S 
ratus (34) and decrypts said secret-key by a private- 
key con-esponding to said public-key fordecrypting 
said television, prograrri by said decrypted;.secret- 
k©^ ^ / ':i "... " : • 

V, . • . ■•■ ' . , • ■ ': SO 

4. Crypt key system comprising a CATV station (3 1 ) , a 
data managing center (33) . ^ a. receiving .apparatus 
(34), a data communication apparatus^ (35) .and a 
user tem:iinal-(3^, wherein ^ih^Ki'* . u 

said CATV.station,(31) andjsaidvdata nianaging ss 
center (33) are connected with online corrimunica- 
tion nrieans such as, a dedicated line^ or the like, or 
off-line means such as a flexible disc or th^ like;>. 
^betweiBn said CATV st^oaand saki recei^/ing appa- 
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ratus (34) and between said CATV station and said 
data communication apparatus (35) are connected 
with a CATV line (37) ; 

between said receiving apparatus (34) and said user 
terminal (38) and between said data communication 
apparatus (35) and said user terminal (38) are con- 
nected with direct online means or with off-line, 
means such as a f lexble disc or the like; 
said data managing center (33) supplies a public- 
key, and a secret-key which is a use permit key for 
each data to be supplied, to said CATV station (31); 
said CATV station (31) encrypts said secret-key for 
each data by said public-key of data managing 
center (33) to broadcast: 

a user requests for the use of data by using said data 
cornmunication apparatus (35) to said data manag- 
ing center (EE) via said CATV line (37) together with 
transmitting a public-key of said user; 
said data managing center (33) encrypts the data by 
y said secret-key for each data, and encrypts said 
public-key of data managing center (33) by said pub- 
lic-key of said user and transmits encrypted data and 
encrypted saki public-key of data managing center 
(33) together with a private-key of saki data mariag- 

: ing center (33) to said user ; 

said user decrypts said encrypted public-key of cjata 
mariaging center (33) by a private-key of said L^er, 
decrypts said encrypted secret-key for each datalby 
decrypted said public-key of data managing cerfter 

- (33> and decrypts enaypted data by decrypted^d 
secret-key for each data. . -j- ... . -* * : ^ - 

5. Crypt key system according to claini 4 wherein ariig- 
ital signature of said data managing center (33). is 
provkled on said public-key pf cteita managing center 

(33) . 

6. Crypt key system comprising a CATV station (31). a 
data managing center (33), a receiving apparatus 

(34) . a data communication apparatus (35). and a 
user terminal (38), wherein • , 

a put)lic-key of a user is registered with saki data 
managing center (33) in advance; 
said data managing ceriter (33) encrypts a public- 
key of said data nnanaging center (33) by, said public- 
key of each user to provide adigital signature on sakI 
public-key of data rnanaging cente.rX33) by aprivate- 
key of said data managing center (33) ; 
said encrypted public-key of sai^ data, managirig 
geotef (33) and sajd digital sigpaturepf data ipan:. 
aging penter (33).are sent to said^CATV statbn (31 ) ; 
said CATV station: (3>) broadcasts .. sab received 
encrypted publte-key of data nnansging- center (33) 
^ said .digital. signature; . . , j r 
said user decrypts saki received ericrypted p.uk)lic- 
key ptdata managing center (83} by said publip^y 
of said user and recognizes said digital signatureby 
said decrypted public-key of data control center. 



15 

BNSDOCID: <EP 0719045A2J_> 



29 



EP 0 719 045 A2 



7. Crypt key system according to daim 6 wherein 
uncrypted user identification information of each 
use: is further added to the encrypted public-key of 
said data nfianaging center (33) to be broadcast. 

5 

8. Crypt key system comprising a CATV station (31), a 
data managing center (33). a receiving apparatus 
(4). a data communication apparatus (35), and a 
user terminal (38), wherein 

a user presents a public-key of said user to said data io 
managing center (33) upon requesting use of the 
data to said data managing center (33); 
said data managing center (33) receives the request 
for data use from said user and encrypts the data 
requested by said public-key of said user to send to is 
said CATV station (31 ) ; 

said CATV station (31) broadcasts said received 
encrypted data; and 

said user who receives said broadcast encrypted 
data decrypts said encrypted data by a private-key 20 
of said user. 
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(54) Crypt key system for broadcast programmes 

(57) The invention relates to a crypi key system 
applicable to a television system, a database system or 
an electronic commercial transaction system or the like. 
This system consists of a broadcasting station 11 « a 
database 12, a receiving apparatus 14, a data commu- 
nication apparatus 15 and a user terminal 18. As a crypt 
key system, a secret-key cryptosystem. a public-key 
cryptosystem, and a digital signature system are used. 
The keys used in the system are either encrypted or 
remain uncrypted to be supplied by twoadcasting. The 
present invention is effective in the prevention of an 
unjustified use of the database system, managing cop- 
yrights, and in a pay-per-view system and a vkieo-on- 
demand system Further, the present invention is effec- 
tive in realizing an electronic market which uses an 
electronic data information system. 
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